sorry, this might sound really bad but I'm just looking for people that could teach me some new techniques i know some basic xss and i want to learn some new things, add me on discord if you want - Rev#4950

So i was trying to inject into some site and the code was like
<......... Value="60"> so i tried to inject some code but it cut the double qoute so it looka like this <......value="60 onmouseover=alert(1)">
It also cuts ' and % is there's any way to bypass ?

What is this doing? Whe have a few users on our site that appear to be running this code. We have ruled out this existing in the database, or flat files and assume it is being added to the dom via a rogue browser add on.

Whatever it is doing is causing a js error which is being logged by our logger service.